Forum Discussion

Cirrostratus

Jul 01, 2010

SSL Decryption with Wireshark - Cached Certificate?

I know it is possible to decrypt an HTTPS conversation between a client and a virtual server with Wireshark - I've done it before by specifying a couple of parameters in the SSL protocol preferences (...

management

monitoring

nitass

Employee

Jul 06, 2013

I did that on the version 11 it did not work. The packet capture was using the -s0 optionwhat cipher was it used? some cipher cannot be decrypted.

Important: Not all ciphers provide the ability to decrypt SSL traffic using a utility such as ssldump. Depending on the cipher negotiated, the ssldump utility may not be able to derive enough information from the SSL handshake and the server’s private key to decrypt the application data. Examples of such SSL ciphers would be the Diffie-Hellman Ephemeral (DHE) cipher suites and export-grade RSA cipher suites.sol10209: Overview of packet tracing with the ssldump utility

http://support.f5.com/kb/en-us/solutions/public/10000/200/sol10209.html

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL Decryption with Wireshark - Cached Certificate?

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Need to make 2 Virtual Appliance in r4600 F5

Disabling signature for a URL

XC - geo LB to the origin servers

F5 LACP

Terraform LTM provider - ICMP disabled on resulting VIPs

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Understanding IPSec IKEv1 negotiation on Wireshark

Understanding IPSec IKEv2 negotiation on Wireshark

Automating Certificate Management on F5 BIG-IP

Decrypting TLS traffic on BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS